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ON THE ORDER OF UNIMODULAR MATRICES 
MODULO INTEGERS 

PAR KURLBERG 

Abstract. Assuming the Generalized Riemann Hypothesis, we 
prove the following: If b is an integer greater than one, then the 
multiplicative order of b modulo N is larger than A 1_e for all N in 
a density one subset of the integers. If A is a hyperbolic unimodular 
matrix with integer coefficients, then the order of A modulo p is 
greater than p 1 ~ e for all p in a density one subset of the primes. 
Moreover, the order of A modulo N is greater than N 1 ^ 6 for all N 
in a density one subset of the integers. 



1. Introduction 

Given an integer b and a prime p such that p /ffe, let ord p (6) be the mul- 
tiplicative order of b modulo p. In other words, ord p (&) is the smallest 
non negative integer k such that b k = 1 mod p. Clearly ord p (fe) < p— 1, 
and if the order is maximal, b is said to be a primitive root modulo p. 
Artin conjectured (see the preface in [3]]) that if b G Z is not a square, 
then b is a primitive root for a positive proportionF] of the primes. 

What about the "typical" behaviour of ord p (6)? For instance, are 
there good lower bounds on ord p (&) that hold for a full density subset 
of the primes? In [Q, Erdos and Murty proved that if b ^ 0, ±1, then 
there exists a 5 > so that ord p (5) is at least p 1 ^ 2 exp((logp) 5 ) for 
a full density subset of the primes. However, we expect the typical 
order to be much larger. In || Hooley proved that the Generalized 
Riemann Hypothesis (GRH) implies Artin's conjecture. Moreover, if 
/ : R + — > R + is an increasing function tending to infinity, Erdos and 
Murty showed that GRH implies that the order of b modulo p is 
greater than p/ f(p) for full density subset of the primes. 

It is also interesting to consider lower bounds for ordisr(b) where N 
is an integer. It is easy to see that ordjv(fr) can be as small as logiV 
infinetely often (take N = b k — 1), but we expect that the typical order 
to be quite large. Assuming GRH, we can prove that the lower bound 
ordjv(6) ^> N 1 ^ 6 holds for most integers. 
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Theorem 1. Let b 7^ 0, ±1 be an integer. Assuming GRH, the number 
of N < x such that ord-N^b) <C iV 1 ^ is o(x). That is, the set of integers 
N such that ordjv(fe) ^> N 1 ^ 6 has density one. 

However, the main focus of this paper is to investigate a related 
question, namely lower bounds on the order of unimodular matrices 
modulo iVeZ. That is, if A e ST^Z), what can be said about lower 
bounds for ord]\r(A), the order of A modulo N, that hold for most 
N7 It is a natural generalization of the previous questions, but our 
main motivation comes from mathematical physics (quantum chaos): 
In [[7] Rudnick and I proved that if A is hyperbolic^], then quantum 
ergodicity for toral automorphisms follows from ord7v(^4) being slightly 
larger than iV 1//2 , and we then showed that this condition does hold for 
a full density subset of the integers. 

Again, we expect that the typical order is much larger. In order to 
give lower bounds on ordjv(^4), it is essential to have good lower bounds 
on oidp(A) for p prime: 

Theorem 2. Let A E SX 2 (Z) be hyperbolic, and let f : R + — > R + be 

an increasing function tending to infinity slower than logs. Assuming 
GRH, there are at most 0( losx ^ 1 _ € ) primes p < x such that ord p (A) < 
p/f(p). In particular, the set of primes p such that ord p (A) > p/f(p) 
has density one. 

Using this we obtain an improved lower bound on ord7v(^4) that is 
valid for most integers. 

Theorem 3. Let A G SX 2 (Z) be hyperbolic. Assuming GRH, the 
number of N < x such that ordjy(A) <ti N 1 ^ 6 is o(x). That is, the 
set of integers N such that ordAr(A) 3> iV 1_e has density one. 

Remarks: If A is elliptic (| tr(A)| < 2) then A has finite order (in fact, 
at most 6). If A is parabolic (| tr(A)| = 2), then ord p (A) = p unless A 
is congruent to the identity matrix modulo p, and hence there exists a 
constant ca > so that ordAr(A) > caN . Apart from the application 
in mind, it is thus natural to only treat the hyperbolic case. 

As far as unconditional results for primes go, we note that the proof 
in relies entirely on analyzing the divisor structure of p — 1, and 
we expect that their method should give a similar lower bound on the 
order of A modulo p. An unconditional lower bound of the form 

(1) ord p (6)>p r ' 



2 A is hyperbolic if | tr(A)\ > 2. 
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for a full proportion of the primes and rj > 1/2 would be quite inter- 
esting. In this direction, Goldfeld proved |J that if rj < 3/5, then flU) 
holds for a positive, but not full, proportion of the primes. 

Clearly ord p (A) is related to ord p (e), where e is one of the eigen- 
values of A. Since A is assumed to be hyperbolic, e is a power of a 
fundamental unit in a real quadratic field. The question of densities 
of primes p such that ord p (A) is maximal, for A a fundamental unit in 
a real quadratic field, does not seem to have received much attention 
until quite recently; in || Roskam proved that GRH implies that the 
set of primes p for which ord p (A) is maximal has positive density. (The 
work of Weinberger M , Cooke and Weinberger |TT[ and Lenstra H does 



treat the case ord p (A) = p — 1, but not the case ord p (A) = p + 1.) 

2. Preliminaries 

2.1. Notation. If Op is the ring of integers in a number field F, we 
let Cf(s) = E 

acSDF N(a) s denote the zeta function of F . By GRH we 
mean that all nontrivial zeroes of Cf( s ) ne on the line Re(s) = 1/2 for 
all number fields F. 

Let e be an eigenvalue of A, satisfying the equation 

(2) e 2 -tr(A)e + det(A). 

Since A is hyperbolic, K = Q(e) is a real quadratic field. Let Ok be 
the integers in K, and let Dk be the discriminant of K. Since A has 
determinant one, e is a unit in Ok- For n G Z + we let £ n = e lm l n 
be a primitive n-th root of unity, and a n = e 1 /™ be an n-th root of e. 
Further, with Z n = K(( n ), K n = K(( n ,a n ), and L n = K(a n ), we let 
cr p denote the Frobenius element in Gal(i^„/Q) associated with p. We 
let F p k denote the finite field with p k elements, and we let F\ C 
be the norm one elements in F p 2, i.e., the kernel of the norm map from 
F p 2 to F p x . Let (A) p be the group generated by A in SL 2 (F p ). (A) p is 
contained in a maximal torus (of order p — 1 or p+ 1), and we let i p be 
the index of (A) in this torus. Finally, let tv(x) = \{p < x : p is prime} | 
be the number of primes up to x. 

2.2. Kummer extensions and Frobenius elements. We want to 
characterize primes p such that n\i p , and we can relate this to primes 
splitting in certain Galois extensions as follows: 

Reduce equation (^) modulo p and let e denote a solution to equation 
(0) in F p or F p 2. (Note that if p does not ramify in K then the order of 
A modulo p equals the order of e modulo p.) lip splits in K then e e F p , 
and if p is inert, then e G -F p 2 \ F p . In the latter case, e G -Fi since 
the norm one property is preserved when reducing modulo p. Now, 
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F p and F p \ are cyclic groups of order p — 1 and p + 1 respectively. 
Thus, if p splits in .fT then ord p (e) \p — 1, whereas if p is inert in K then 
ord p (e)|p + l. 

Lemma 4. Letp be unramified in K n , and let C n = {1,7} C Gal(fC„/Q), 
where 7 is given fey 7(Cn) = Cn 1 an d l( a n) = cn" 1 . TTien t/ie condition 
that n\i p is equivalent to a p G C„. Moreover, C n is invariant under 
conjugation. 

Proof. The split case: Since n\i p and i p |p — 1 we have Cn G F p , i.e. F p 
contains all n-th roots of unity. Moreover, e is an n-th power of some 
element in F p , and thus the equation x n — e splits completely in F p . In 
other words, p splits completely in K n and a p is trivial. 

The inert case: Since n divides i p} e is an n-th power of some element 
in Fp 2 and hence a n G F p 2. Moreover, n\p 2 — 1 implies that Q n G F p 2. 

Now, jvj 2 (a n ) = 1 and A^ 2 (C„) = C£ +1 = 1 implies that 
o-p(Cn) = C 1 mod p, a p (a n ) = a" 1 mod p. 
For p that does not ramify in K n we thus have 
(3) (T P (Cn) = Q\ o p (a n ) = a' 1 

Now, an element r G Gal(K n / Q) is of the form 





t G Z 

s G Z, «6 {1, -1} 

Composing 7 and r then gives 

r o 7 
and 

„ „ J Cn ~~ * Cn ~ * Cn 

7 O T . < _ 

I Oi n > a n Cn > a n Cn 

which shows that 7 is invariant under conjugation. □ 

2.3. The Chebotarev density Theorem. In [|K|] Serre proved that 
the Generalized Riemann Hypothesis (GRH) implies the following ver- 
sion of the Chebotarev density Theorem: 

Theorem 5. Let E/Q be a finite Galois extension of degree [E : Q] 
and discriminant Dg. For p a prime let o p G G = Gal(i?/Q) denote 
the Frobenius conjugacy class, and let C C G be a union of conjugacy 
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classes. If the nontrivial zeroes of (e{s) He °n the line Re(s) = 1/2, 
then for x > 2, 

\{p < x: a p G C}\ = |^7r(x) + O f {§|* 1/2 i^gD E + [E : Q] logx)J 



Now, primes that ramify in K n divides nDx (see Lemma |TD]) , so as 
far as densities are concerned, ramified primes can be ignored. The 
bounds on the size of Dk„ (see Lemma [H|) and Lemma [| then gives 
the following: 

Corollary 6. // GRH is true then 

2 

(4) \{p < x: n\i p }\ = ^ - ^ x tt(x) + O (x 1/2 (\og(xn)) 

Remark: For theorems |2| and |^ to be true, it is enough to assume 
that the Riemann hypothesis holds for all (k„, n> 1. 

2.3.1. Bounds on degrees. In order to apply the Chebotarev density 
Theorem we need bounds on the degree [K n : Q]. We will first assume 
that e is a fundamental unit. 

Lemma 7. If e is a fundamental unit in K and ifn = 4 or n = q, for 
q an odd prime, then Gd\(K n / K) is nonabelian. 

Proof. We start by showing that [K n : Z n ] = n. Consider first the 
case n = q. If a q G Z q then (3 = N^ q (a q ) = a q Zq Cq G K C R for 
some integer t. Since q is odd we may assume that a q G R, and this 
forces Cq = 1; which in turn implies that a q Zq ' K ^ G K. Because e is 
a fundamental unit this means that q\[Z q : K\. On the other hand, 
[Z q : K] | <p(q), a contradiction. Thus a q G" Z q , and hence K q /Z q is a 
Kummer extension of degree q. 

For n = 4 we note that i G Z 4 = K{i). Thus a 2 = y/e G Z 4 
implies that \f—t G Z 4 . However, either y/e or ^/—e is real and gen- 
erates a real degree two extension of K, whereas K(i) is a non-real 
quadratic extension of K, and hence a 2 ^ Z±. Now, if a 4 G Z/^a^) 
then N^ a2 \a^) = a\i l G Z 4 for some t G Z, and thus a 4 = a 2 G Z 4 
which contradicts a 2 ^ Z 4 . Therefore, 

[Z 4 (a 4 ) : Z 4 ] = [Z 4 (a 4 ) : Z 4 (a 2 )] [Z 4 («2) : Z 4 ] = 4. 

Finally we note that the commutator of any nontrivial element o~i G 
Gal(K n /Z n ) with any nontrivial element <x 2 G Ga\(K n / L n ) is non- 
trivial (we may regard Gal(i^ n /Z n ) and Gal(K n /L n ) as subgroups of 
Ga\(K n /K)). Hence Gal(K n / ' K) is nonabelian. □ 
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Lemma 8. If e is a fundamental unit then 

[K n : Z n \ > n/2. 

Proof. Clearly Z n (a q k) C K n , and since field extensions of relative 
prime degrees are disjoint, it is enough to show that if q k \\n is a prime 
power then q k \[Z n (a q k) : Z n ] if q is odd, and q k ~ 1 \[Z n (a q k) : Z n ) if 
<Z=2. 

If q is odd then Lemma |7] implies that a q G" Z n since Gal(Z n /i^) is 
abelian. Hence, if m G Z and a™ G Z n , we must have g fc |m. Now, if 
cr G Gal(Z n (a q fc)/Z n ) then a(a q k) = a q kC^ k for some integer t a . Thus 
there exists an integer t such that 

P = N z n M = a q k Q e 

Multiplying /? by G Z n we find that a qk n<y ^ ^ G Z n , and hence 
q k \[Z n (a q k) : Z n ]. 

For q = 2 the proof is similar, except that a factor of two is lost if 
a 2 G Z n . □ 

Remark: K 2 /Q is a Galois extension of degree four, hence abelian 
and therefore contained in some cyclotomic extension by the Kronecker- 
Weber Theorem, and it is thus possible that a 2 G Z n for some values 
of n. 

Lemma 9. We have 

n(j)(n) < x [K n : Q] < 2n<f)(n) 

Proof. We first note that [Z n : K\ equals <p{n) or <p{n)/2 depending 
on whether K C Q(Cn) o r not- We also have the trivial upper bound 
[K n : Z n ] < n. 

For a lower bound of [K n : Z n ] we argue as follows: Let 7 G K be 
a fundamental unit. Since the norm of e is one we may write e = 7 fc 
for some A; G Z. (Note that k does not depend on n.) As [Z n (7 1 / n ) : 
Z n .(e 1/n )] < k, Lemma I gives that [Z n {e l ' n ) : Z n \ > n/k. The upper 
and lower bounds now follows from 

[K n : Q] = [K n : Z n ][Z n : K][K : Q] 

□ 

2.3.2. Bounds on discriminants. 

Lemma 10. If p ramifies in K n thenp\nDx- Moreover, 
log(disc(K n /Q)) < K [K n : K\ log(n) 
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Proof. First note that 

disc(K n /Q) = N$(diBc(K n /K)) x disc(K/Q) [K " :K] . 
From the multiplicativity of the different we get 

disc(K n /K) = disc(Z n /K)^ z ^ x Njj?(djsc(K n /Z n )), 

Since e is a unit, so is e 1//n . Thus, if we let f(x) = x n — e then f'(x) = 
ra™" 1 , and therefore the principal ideal / / (e 1 / n )Dx n equals nQ Kn . In 
terms of discriminants this means that 

disc(K n /Z n )\N« : (nQ Kn ) 

and similarly it can be shown that 

disc(Z n / K)\N^(nO Zn ). 

Thus disc^-R^/Q) divides 

(N% n (nD Kn ) x N^(nD z J K ^) x disc(K/Q)[ x " : ^. 

= n 4 Mxdigc(K/Q)M 

which proves the two assertions. □ 

3. Proof of Theorem |] 

In order to bound the number of primes p < x for which i p > x 1 ^ 2 
we will need the following Lemma: 

Lemma 11. The number of primes p such that ord p (A) < y is 0(y 2 ). 

Proof. Given A there exists a constant Ca such that det^™ — I) — 
O(C^). Now, if the order of A mod p is n, then certainly p divides 

det(A n -7)^0. Putting M = nLi det (^ n ~ J ) we see that an Y 
prime p for which A has order n < y must divide M. Finally, the 
number of prime divisors of M is bounded by 

y 

log(M) <^nlog(L7 A ) <2/ 2 . 



n=l 



□ 



First step: We consider primes p such that i p G (x 1 ^ 2 \ogx, x). By 
Lemma [11] the number of such primes is 




1 / 2 logxy J ylog 2 ^ 



Second step: Consider p such that q\i p for some prime q G ( ^ 3 - , x 1 ^ 2 lo£ 
We may bound this by considering primes p < x such that p = ±1 
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mod g for g G ( /"V , x 1 / 2 logs). Since g < x 1 / 2 logx, Brun's sieve gives 

log X 

(up to an absolute constant) the bound 

x 



0(g) log(x) 

and the total contribution from these primes is at most 

(6) \ A x x \ ^ 1 

V a 0(?)log(x/g) logx ^ g' 

qg( — 4 .x 1 / 2 log x) qg( 31 .. .a: 1 / 2 log a;) 

log° x log° a: 

Now, summing reciprocals of primes in a dyadic interval, we get 

1 tt(2M) 1 



o M ~ logM 



Hence 



El I f x l l 2 \ogx \ log log a; 

W^ lQg2 Ll/2/w3 ~ « 



g logx \x x l 2 /\ogx) \ogx 

qe( JL -i—,x 1 / 2 logs) 

log X 



' a; log log x - 



and equation @ is 0(- k , 

Third step: Now consider p such that g|« p for some prime g G 

1 /2 

(f(x) 2 , ^ a - ) . We are now in the range where GRH is applicable; by 
Corollary || and Lemma || we have 

\{p < x : q\i p }\ < — + 0(x 1/2 hg(xq 2 )) 

q<p{q) logx 

1 /2 

Summing over q G (f(x) 2 , x 3 - ) we find that the number of such p < x 

log as 

is bounded by 

(7) £ (^ + ^ 1/2l °^ 2 ))) 



Now, 



and thus equation (0) is 



1/2 ^ f(x) 

2 > 



<?6(/W 2 ,f4-) 

log° X 



X X 
< + 



/(x)logx log a; 
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Fourth step: For the remaining primes p, any prime divisor q\i p is 
smaller than f(x) 2 . Hence i p must be divisible by some integer d G 
{f(x), f(x) 3 ). Again Lemmas |6| and |9] give 

\{p < x : d\i p }\ < — + 0{x l ' 2 \og(xd 2 )) 

d(p{d) logx 

Noting that <p(d) ^> d x ~ e and summing over d G (f(x), f{x) 3 ) we find 
that the number of such p < x is bounded by 

(8) E (^^ + °(- 1/2 M^ 2 )) 



Now, 



and 



1 1 



< 



, d 2 -* f(x) 1 - 



X 



2\ 



% 1/2 log(xrf 2 ) < fixfx 1 ' 2 log( 
therefore equation (||) is 

^ x 

logx 

4. Proof of Theorems [I] and || 

Given a composite integer iV = n p |Ar£* ap we wish to use the lower 
bounds on ord p (6) (or ord p (j4)) to obtain a lower bound on ordjv(6). 
The main obstacle is that ordjv(6) can be much smaller than Y\ p \ N or d p a p (&)■ 
Let X(N) be the Carmichael lambda function, i.e., the exponent of the 
multiplicative group (Z/iVZ)*. Clearly ordAr(fe) < X(N), and it turns 
out that X(N) can be much smaller than N. However, X(N) ^> N 1 ' 6 
for most N (see and since 

ord^)>^n° rd ^) 

P |7V 

it suffices to show that most integers are essentially given by a product 
of primes p such that ord p (6) > pj log p. We will only give the details 
for Theorem |3] since the other case is very similar. 

If p is prime such that ord p (A) < pj log(p), or p ramifies in K, we 
say that p is "bad" . We let Pb denote the set of all bad primes, and 
we let Pb{z) be the set of primes p G Pb such that p > z. Since only 
finitely many primes ramify in K , Theorem |2| gives that the number of 
bad primes p < x is Q( lo LJ - A key observation is the following: 
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Lemma 12. We have 



w El 

In particular, if we let 



peP B 



< oo 

V 



then /3(z) tends to zero as z tends to infinity. 

Proof. Immediate from partial summation and the 0( lo ^f-e x ) estimate 
in Theorem 0. □ 

Given N G Z, write iV = s 2 NgNb where NqNb is square free 
and Nb is the product of "bad" primes dividing N. By the follow- 
ing Lemma, we find that few integers have a large square factor: 

Lemma 13. We have 



\{N < x : s 2 \N,s >y}\ = 0[- 

\y 

Proof. The number of N < x such that s 2 |iV for s > y is bounded by 

Next we show that there are few N for which iVe is divisible by 
p G Pb{z). In other words, for most N, Nb is a product of small "bad" 
primes. 

Lemma 14. The number of N < x such that p G Pb{ z ) divides Nb is 
0{x(3{z)). 

Proof. Let p G Pb{z). The number oi N < x such that p\N is less 
than x/p. Thus, the total number of N < x such that some p G Pb{z) 
divides N, is bounded by 



~ = x Yl \ = x ^ 



P eP B (z) r p&p b {z) ^ 

□ 

Combining the previous results we get that the number of iV = 
s 2 NqNb < x such that iV^ is z-smooth and s < y is 

x(l + 0(P(z) + l/y)). 

For such N we have Nb < EIp^P ^ e * ■ Letting z = log log x and 
y = \ogx we get that 

N N 
N n = — — > 



s 2 N B log 3 x 
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for iV < x with at most O (x((3(\og\ogx) + (logx)^ 1 )) = o(x) excep- 
tions. Now, the following Proposition gives that, for most N, ordjv(^4) 
is essentially given by n p |7v ord p (A). 

Proposition (0, Proposition 11). Let D A = 4(tr(A) 2 - 4). For al- 
most all f\ N < x, 

ordjv(A) > — — — 

exp(3(log logx) 4 ) 

where d is given by writing N = ds 2 , with d = d gcd(d, Da) square- 
free. 

Finally, since ord p (A) > > p l ~ e for p\Nc and p sufficiently large, 
we find that 

0lMA) » u ^f"' (A i » ... » 

exp(3(log log xp) exp(3(log log xp) 
for all but o(x) integers N < x. 
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